2 matches found
SugarCRM Multiple Vulnerabilities (Sep 2017)
SugarCRM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sugarcrm:sugarcrm"; if description...
CVE-2017-14510
SugarCRM prior to 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 (and Sugar Community Edition 6.5.26) contains an unauthenticated cross-site scripting (XSS) vulnerability in the WebToLeadCapture feature. The issue is mitigated by proper validation of redirect URL values. No exploitation ...